$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200754.roa File: AS200754.roa (raw, json) Hash identifier: wYHMxrxhG+rSc3e9PryZGXvN3poWMTcIljGseJMWPWE= Subject key identifier: BC:B7:41:18:92:11:FE:46:62:84:30:B0:85:36:7F:EE:74:A5:01:86 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5319D4779034634562B8CEF1F18789E18B48BFDE Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200754.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 200754 IP address blocks: 2a0a:6040:c300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:19:d4:77:90:34:63:45:62:b8:ce:f1:f1:87:89:e1:8b:48:bf:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=BCB741189211FE46628430B085367FEE74A50186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:16:28:3e:48:0f:70:48:d0:1f:ba:ef:46:ad: fe:6f:1e:4f:0f:e1:86:ff:f8:9f:96:46:76:66:20: ec:70:4e:45:95:79:fb:ea:f0:9a:a8:87:35:e1:0f: 1e:c9:8a:29:4c:40:55:f8:6d:2c:e4:82:3b:95:a1: 32:c7:87:e6:ec:fa:a8:3f:1b:f5:2d:44:ee:a7:f0: 93:8f:d1:de:5f:56:ca:0d:48:45:8b:51:42:7a:87: de:c7:fd:29:98:ee:f5:2b:e6:cd:de:6c:d0:54:eb: 25:ae:61:5b:7a:f3:e7:7c:94:9f:a8:6c:be:7b:20: f4:b9:71:f2:f4:e5:8f:7b:ea:74:3e:0d:87:26:47: 9a:d1:fc:05:be:60:9e:61:ac:40:e2:e4:f5:0d:f2: 7c:14:28:14:cd:93:ab:ff:a3:97:3b:f1:75:06:c6: a3:3b:b9:31:cd:13:a4:d6:b0:78:cb:9d:38:20:b3: e9:3b:90:50:b0:28:3d:65:ce:88:8f:ea:44:7b:49: 59:0b:bf:08:92:7e:57:21:42:94:3d:38:66:35:07: dd:c6:69:4b:5a:9b:00:e7:91:d7:5a:87:1f:05:76: c8:f4:f5:a8:8c:54:3f:70:3c:0a:19:e3:67:78:9f: 00:a2:86:90:1b:c1:78:74:70:07:94:43:69:94:09: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B7:41:18:92:11:FE:46:62:84:30:B0:85:36:7F:EE:74:A5:01:86 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c300::/40 Signature Algorithm: sha256WithRSAEncryption 9d:f6:5a:59:60:40:a3:44:1e:5f:48:79:2d:87:e3:b5:de:0a: a5:16:ff:be:7f:ab:70:c8:b4:63:44:38:ff:04:41:16:57:fd: af:7b:db:8b:4a:33:93:0a:f2:6b:85:88:a7:5e:67:07:12:03: 88:d9:38:3f:a7:fe:6d:1f:27:be:82:8b:63:ad:0d:fa:fe:7b: 88:c4:28:21:95:e4:66:8e:f9:ba:66:43:a7:a7:a4:92:8d:39: ee:0a:02:2a:92:cd:63:18:a7:f0:35:09:da:5f:31:02:20:96: 8a:05:b7:97:d7:da:01:2f:c5:d2:bc:12:5c:55:c1:9e:de:6e: 2b:5c:b4:e1:cf:1e:e0:5a:09:ad:2d:7d:96:20:65:23:69:b8: 84:c1:69:13:73:4f:4e:b0:1a:e0:5d:bc:06:e8:4a:44:9a:d5: a1:61:47:6e:2e:61:ba:9a:cf:7a:06:bc:d1:3d:e0:76:6f:63: f1:00:9f:62:fc:23:7e:47:64:a6:26:f2:b7:b1:e6:0f:aa:d6: f7:09:32:7f:b7:06:ec:2b:5e:38:29:7d:ce:65:d0:8e:10:c2: 6b:04:61:b0:1b:c6:81:d1:88:a1:75:ec:21:1e:f1:00:8c:74: fc:cc:56:37:c1:39:c4:4d:75:0a:3c:5f:f1:58:88:b9:49:58: 57:96:99:8c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUxnUd5A0Y0ViuM7x8YeJ4YtIv94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKEJDQjc0MTE4OTIxMUZFNDY2Mjg0MzBCMDg1MzY3RkVFNzRBNTAxODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfFig+SA9wSNAfuu9Grf5vHk8P 4Yb/+J+WRnZmIOxwTkWVefvq8JqohzXhDx7JiilMQFX4bSzkgjuVoTLHh+bs+qg/ G/UtRO6n8JOP0d5fVsoNSEWLUUJ6h97H/SmY7vUr5s3ebNBU6yWuYVt68+d8lJ+o bL57IPS5cfL05Y976nQ+DYcmR5rR/AW+YJ5hrEDi5PUN8nwUKBTNk6v/o5c78XUG xqM7uTHNE6TWsHjLnTggs+k7kFCwKD1lzoiP6kR7SVkLvwiSflchQpQ9OGY1B93G aUtamwDnkddahx8Fdsj09aiMVD9wPAoZ42d4nwCihpAbwXh0cAeUQ2mUCWavAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvLdBGJIR/kZihDCwhTZ/7nSlAYYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMMwDQYJKoZIhvcNAQELBQADggEBAJ32 WllgQKNEHl9IeS2H47XeCqUW/75/q3DItGNEOP8EQRZX/a9724tKM5MK8muFiKde ZwcSA4jZOD+n/m0fJ76Ci2OtDfr+e4jEKCGV5GaO+bpmQ6enpJKNOe4KAiqSzWMY p/A1CdpfMQIglooFt5fX2gEvxdK8ElxVwZ7ebitctOHPHuBaCa0tfZYgZSNpuITB aRNzT06wGuBdvAboSkSa1aFhR24uYbqaz3oGvNE94HZvY/EAn2L8I35HZKYm8rex 5g+q1vcJMn+3BuwrXjgpfc5l0I4QwmsEYbAbxoHRiKF17CEe8QCMdPzMVjfBOcRN dQo8X/FYiLlJWFeWmYw= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:40 2025 by rpki-client